|
246451
|
7.5 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Processor::ProcessFragments in Core/Ap4Processor.cpp.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-14590
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246452
|
8.8 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. AP4_Mp4AudioDsiParser::ReadBits in Codecs/Ap4Mp4AudioInfo.cpp has a heap-based buffer over-read.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-14589
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246453
|
7.5 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. A NULL pointer dereference can occur in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp.
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-14588
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246454
|
8.8 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. AP4_MemoryByteStream::WritePartial in Core/Ap4ByteStream.cpp has a buffer over-read.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-14587
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246455
|
8.8 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. A SEGV can occur in AP4_Mpeg2TsAudioSampleStream::WriteSample in Core/Ap4Mpeg2Ts.cpp, a different vulnerability than CVE-2018-14532.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-14586
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246456
|
8.8 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. AP4_BytesToUInt16BE in Core/Ap4Utils.h has a heap-based buffer over-read after a call from the AP4_Stz2Atom class.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-14585
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246457
|
8.8 |
HIGH
Network
|
axiosys
|
bento4
|
An issue has been discovered in Bento4 1.5.1-624. AP4_AvccAtom::Create in Core/Ap4AvccAtom.cpp has a heap-based buffer over-read.
|
CWE-125
Out-of-bounds Read
|
CVE-2018-14584
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246458
|
8.8 |
HIGH
Network
|
xyhcms
|
xyhcms
|
xyhai.php?s=/Auth/addUser in XYHCMS 3.5 allows CSRF to add a background administrator account.
|
CWE-352
Origin Validation Error
|
CVE-2018-14583
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246459
|
8.8 |
HIGH
Network
|
bagesoft
|
bagecms
|
index.php?r=admini/admin/create in BageCMS V3.1.3 allows CSRF to add a background administrator account.
|
CWE-352
Origin Validation Error
|
CVE-2018-14582
|
2024-11-21 12:49 |
2018-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246460
|
9.8 |
CRITICAL
Network
|
golemcms_project
|
golemcms
|
GolemCMS through 2008-12-24, if the install/ directory remains active after an installation, allows remote attackers to execute arbitrary PHP code by inserting this code into the "Database Informatio…
|
CWE-94
Code Injection
|
CVE-2018-14579
|
2024-11-21 12:49 |
2018-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
